suse · CVE-2016-9578

Quick triage

Priority: high Published: 2021-05-30 13:47:59 UTC Updated: 2025-10-05 02:33:36 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2016-9578 severity important: SUSE including 37 source package names (libspice-server-devel, libspice-server-devel-0.12.4-8.1, …), 96 product×package rows across 60 product lines (HPE Helion OpenStack 8, SUSE Enterprise Storage 5, … (60 product lines)): Fixed 50, Known Not Affected 46.

Description:

A vulnerability was discovered in SPICE before 0.13.90 in the server's protocol handling. An attacker able to connect to the SPICE server could send crafted messages which would cause the process to crash.

cvelogic Threat Intelligence